Tis the season
With the holidays wrapping up, we're excited to welcome the new year. While some people have resolutions each year, others have predictions. This year, Jake's already made his prediction and it's something that really resonates with rest of the team:
"There will be more high profile security incidents (similar to the recent npm registry vulnerability at GitHub) within the open-source and developer tooling ecosystem directly caused by inconsistently implemented, ad-hoc authorization rules. In preparation for this, security teams will invest more heavily in centralized authorization and permission server databases to help prevent such attacks and others that can arise from permissions inconsistency."
Because the community paid down tech debt last month, this month we had some fun introducing new functionality. SpiceDB 1.3.0 was released with two substantial changes: internally versioned namespaces and object wildcards. In addition to open source goodness, we've also been spending our time simplifying our deployment strategy and building out functionality for our enterprise users.
ICYMI: in addition to posting weekly blog posts, we're now officially posting monthly wrap-ups of events and new functionality we've added to Authzed. We're also giving everyone a little taste of our Slack's random channel and all of it's off-topic goodness.
- SpiceDB 1.3.0 was released and deployed to Authzed.com! Lots of new functionality!
- Joey wrote about using the new wildcard functionality to implement public resources.
- How granular should your permissions be? Jake has it covered in his blog post.
- Now that the schema language is 5 months old, Sam detailed some common patterns that've emerged.
- Got a huge schema? No problem -- the Playground got some performance boosts with large schemas in mind.
- You want privacy? You got it! The Playground also no longer uploads a copy when downloading schemas.
- The Dashboard now has a latency graph in the metrics tab for LookupResources.
- SpiceDB Enterprise now supports multi-tenancy, just like Authzed.com
- Ingress reliability improved for enterprise deployments by migrating to Contour
Entropy from #random
- It's a little late now, Jake wrote a few lines of Python to automate Secret Santa
- Audiophiles. They finally did it, they found something more snake-oil than cable risers.
- The kind folks at Work-Bench and Amplify left the team some holiday goodies.
- Can't wait for web standards? Me neither! Add this project to your site to allow deeplinks anywhere!
- I've been using Slack for 8 years and had no idea you could could cmd+click DMs.
- Join the waitlist... for GitHub search that actually works.
- Foodies brace yourself for a hilarious review of a Michelin Star resturant.
- Our friends over at Buf awarded Kenton for his valiant efforts battling incorrect people on the Internet.
- The FOMO for working at GitLab grows as they just acquired our friends at OpsTrace!
- The longer you stare at these stickers the more your mind feels broken: